"I think the overarching theme we're looking at is that crime for profit motivation has really found the Internet," Vincent Weafer, Los Angeles-based senior director of development for Symantec Security Response, said.
Weafer added that thieves now lurk in cyberspace armed with tools capable of sucking confidential information out of unprotected computers. In 2004, Symantec recorded 37 major virus outbreaks, but less than five were recorded as of November, which is giving web users a false sense of security, he said.
"What we're saying is it's just the opposite. It's actually gotten worse," Weafer said. “The company reports a 140 percent increase in malicious code and a doubling of phishing attempts.”
Additionally, the growth of high-speed, broadband Internet connections has given cyber crooks a wider community to prey on through phishing expeditions and links to bogus websites.
"Malicious users are now trying to trick people and deceive them into disclosing some information such as their bank card number, credit card number and personal information," John Weigelt, Microsoft Canada's chief security adviser, said.
Weafer noted that malware targeting instant-messaging software also is growing at a faster rate than email threats. Web-linked personal digital assistants, Blackberries and cellphones all are expected to come under increasing attack, as well as Internet-linked commercial devices such as vending machines, gas pumps, automated cash machines and phone systems.
"Today's battleground is very much the desktop," Weafer said. "I think in the future we're seeing that battleground move to smart devices. People tend to rush for the technology. They get connected, they get the machines online, but the security posture takes time to catch up."
But with hard work, design teams potentially have the ability to protect users. For example, Korea previously topped Symantec's list of targets after plunging into widespread adoption of broadband. But after the Slammer virus crashed systems worldwide in 2003, Korea embarked on a national approach to Internet security and privacy education. The country now ranks much lower on the Symantec list, Weafer said.
"If you maintain sensible precautions, using layered defences, updated security, got the patches, truthfully it will protect you against the most common attacks," Weafer said.
